Remote Vulnerability Management Jobs in Bothell, WA

Build the future, spark innovation and align your career with purpose.

McKinstry is innovating the waste and climate harm out of the built environment and creating lasting impact. Together, we're building a thriving planet.

Buildings are a leading contributor to the climate crisis, generating nearly 40% of total global energy-related carbon emissions. We're making a lasting impact on our industry and within our communities by addressing the climate, affordability and equity crises through:

• renewables and energy services
• engineering and design
• construction and facility services

To get where we're going, we need big thinkers, problem solvers and collaborative mindsets. Does that sound like you?

The Opportunity with McKinstry

McKinstry is actively integrating artificial intelligence across our business and client solutions-and we're looking for an Information Security Engineer to help ensure this adoption is secure, responsible, and defensible.

This role sits at the intersection of AI security, data privacy, and enterprise governance. You'll play a key role in securing AI systems, guiding AI tool adoption, and ensuring compliance with data protection agreements and privacy regulations as AI becomes embedded in how we operate.

You'll have the opportunity to shape how AI is adopted responsibly across a complex, realworld enterprise-working alongside security, legal, and engineering leaders to solve problems that truly matter. We value collaboration, integrity, and thoughtful risktaking, and we're committed to building technology solutions that are secure, ethical, and futureready.

This role is based in our Seattle, WA corporate office and follows a hybrid schedule with three days onsite.

What You'll Do

AI Security & Governance

• Help design and implement security controls for AI/ML systems, GenAI tools, and LLM-based applications used across the enterprise
• Support development and maintenance of McKinstry's AI security framework aligned with industry standards (e.g., NIST AI RMF, OWASP LLM Top 10)
• Participate in AI threat modeling and risk assessments across data ingestion, model use, and API integrations
• Help establish guardrails for enterprise AI adoption, including vendor onboarding and shadow AI detection

Privacy & Data Protection

• Review and assess AI vendor Data Processing Agreements (DPAs) in partnership with Legal and Procurement
• Support ongoing compliance with data handling, retention, and residency obligations
• Assess AI tools against applicable privacy and compliance requirements (CCPA/CPRA, SOC 2, and similar frameworks)
• Contribute to data classification and handling standards for AI training, finetuning, and inference

AI Rollout & Risk Management

• Participate in security reviews for AI platforms and tools, including Microsoft Copilot and thirdparty AI services
• Support AI risk assessments and vendor governance documentation for leadership visibility
• Assist with AIspecific incident response planning and escalation scenarios
• Monitor changes in AI vendor security posture, data use policies, and subprocessor disclosures

Collaboration & Enablement

• Serve as a security partner to Legal, Compliance, IT, and Engineering teams on AI initiatives
• Help educate technical and business teams on secure AI usage, data minimization, and privacybydesign principles
• Contribute to executiveready reporting on AI security posture and program maturity

What You Need to Succeed at McKinstry

• 2-3+ years of experience in cybersecurity, with exposure to AI/ML security, data privacy, or cloud security
• Handson experience supporting vendor risk assessments, DPAs, or privacy reviews
• Understanding of common GenAI and LLM security risks (e.g., data leakage, prompt injection, model misuse)
• Familiarity with AI security frameworks such as NIST AI RMF, OWASP LLM Top 10, or similar
• Ability to explain security and privacy concepts to nontechnical stakeholders
• Experience working with privacy or compliance programs (CCPA/CPRA, SOC 2, or related frameworks)
• Familiarity with the Microsoft security and cloud ecosystem (Azure, Defender, Sentinel, Purview)
• Preferred certifications include: CISSP, CIPP/US, CIPM, CCSP, AZ500, SC200, or Security+

PeopleFirst Benefits

When it comes to the basics, we have you covered:

• Competitive pay
• 401(k) with employer match and profit-sharing plan
• Paid time off and holidays
• Comprehensive medical, prescription, dental, and vision with low or zero deductible options and low out of pocket maximums

People come first at McKinstry, and we go beyond the basic benefits with:

• Family formation benefits, including adoption and IVF assistance
• Up to 16 weeks paid parental leave
• Transgender inclusive benefits
• Commuter benefits
• Pet insurance
• "Building Good" paid community service time
• Learning and advancement opportunities via McKinstry University
• McKinstry Moves onsite gyms or reimbursement for remote workers

See benefit plan documents for complete details.

If you're driven by our vision to build a thriving planet together, McKinstry is the place to build your career.

The pay range for this position is $89,010 - $151,300 per year; however, base pay offered may vary depending on job-related knowledge, skills, and experience. A bonus may be provided as part of the compensation package, in addition to a full range of medical, financial, and/or other benefits, dependent on the position offered. Base pay information is based on market location.

The McKinstry group of companies are equal opportunity employers. We are committed to providing equal employment opportunities to all employees and qualified applicants without regard to sex, gender identity, sexual orientation, age, race, color, creed, marital status, national origin, disability, veteran status, genetic information or any other basis protected by law. This policy applies to all terms and conditions of employment including, but not limited to employment, advancement, assignment, and training. This commitment to Equal Employment Opportunity is made equally as a social responsibility and as an economic and business necessity. 

McKinstry is a drug-free workplace. Employment iscontingent upon successfully passing a pre-employment drug and alcohol test, complying with the requirements of the Immigration Reform and Control Act and a Confidentiality Agreement, in addition to successful outcomes of background and reference checks.

Applicants for this role will only be considered if they possess current US Work Authorization, and do not require employer-sponsored VISA support to begin or remain in this role.

#LI-NW1